Your data protection rights under the General Data Protection Regulation
delta quartz is committed to protecting the privacy and security of personal data. Although we are based in Canada, we recognize and respect the rights of individuals in the European Union under the General Data Protection Regulation (GDPR).
This page outlines how we comply with GDPR requirements when processing personal data of EU residents.
We process personal data only when we have a lawful basis to do so. The lawful bases we rely on include:
If you are a resident of the European Union, you have the following rights regarding your personal data:
You have the right to request a copy of the personal data we hold about you. We will provide this information within one month of your request, free of charge for the first request.
You have the right to request that we correct any inaccurate personal data we hold about you. We will make the corrections within one month of your request.
You have the right to request that we delete your personal data in certain circumstances, including:
You have the right to request that we restrict the processing of your personal data in certain circumstances, such as when you contest the accuracy of the data or when processing is unlawful but you do not want the data erased.
You have the right to receive your personal data in a structured, commonly used, and machine-readable format. You may also request that we transmit this data directly to another controller where technically feasible.
You have the right to object to the processing of your personal data for direct marketing purposes. You also have the right to object to processing based on legitimate interests, unless we can demonstrate compelling legitimate grounds.
You have the right not to be subject to decisions based solely on automated processing, including profiling, that produce legal effects or significantly affect you.
To exercise any of your rights under GDPR, please contact us using the information provided below. We will respond to your request within one month. In complex cases, we may extend this period by up to two months, in which case we will inform you of the extension and the reasons for it.
We may need to verify your identity before processing your request. We will not charge a fee for processing your request unless it is manifestly unfounded or excessive.
As we are based in Canada, your personal data may be transferred to and processed in Canada. Canada has been recognized by the European Commission as providing an adequate level of protection for personal data.
We take appropriate safeguards to ensure that your personal data remains protected in accordance with GDPR requirements.
We retain personal data only for as long as necessary to fulfill the purposes for which it was collected, including for the purposes of satisfying any legal, accounting, or reporting requirements.
The criteria we use to determine retention periods include:
We implement appropriate technical and organizational measures to protect personal data against unauthorized or unlawful processing and against accidental loss, destruction, or damage.
In the event of a personal data breach that is likely to result in a risk to your rights and freedoms, we will notify the relevant supervisory authority within 72 hours of becoming aware of the breach. Where the breach is likely to result in a high risk to your rights and freedoms, we will also notify you directly.
If you believe that your data protection rights have been violated, you have the right to lodge a complaint with a supervisory authority. If you are in the EU, you can contact your local data protection authority.
For any questions about our GDPR compliance or to exercise your data protection rights, please contact us at:
delta quartz
250 University Ave, Suite 400
Toronto, ON M5H 3E5
Canada
Email: [email protected]
We may update this GDPR compliance information from time to time. Any changes will be posted on this page with an updated revision date.